EC-Council CEH Certification Practice study guide with 100% correct answers

Which of the following cryptographic algorithms is used in asymmetric encryption? Diffie-Hellman Which of the following is a tool for cracking Windows login passwords using rainbow tables? Ophcrack Brainpower Read More Previous Play Next Rewind 10 seconds Move forward 10 seconds Unmute 0:00 / 0:00 Full screen Jason is at home, attempting to access the website for his music store. When he goes to the website, it has a simple form asking for name, email, and phone number. This is not the music store website. Jason is sure the website has been hacked. How did the attacker accomplish this hack? DNS cache poisoning On your network, you have a Windows 10 system with the IP address 10.10.10.195. You have installed XAMPP along with some web pages, php, and forms. You want to put it on the public-facing internet, but you are not sure if it has any vulnerabilities. On your Kali Linux system, you have downloaded the nmap-vulners script from GitHub. Which of the following is the correct nmap command to run? nmap --script nmap-vulners -sV 10.10.10.195 Implementing emergency lighting that runs on protected power and automatically switches on when the main power goes off is part of which physical control? Employee and visitor safety A hacker finds a system that has a poorly design and unpatched program installed. He wants to create a backdoor for himself. Which of the following tools could he use to establish a backdoor? Metasploit Which of the following is considered an out-of-band distribution method for private key encryption? Copying the key to a USB drive. Based on your review of physical security, you have recommended several improvements. Your plan includes smart card readers, IP cameras, signs, and access logs. Smart cards have the ability to encrypt access information. Smart cards can require contact or be contactless. Proximity cards, also known as RFID (radio frequency identification) cards, are a subset of smart cards that use the 125 kHz frequency to communicate with proximity readers. Proximity cards differ from smart cards because they are designed to only communicate the card's ID, but the smart card can communicate more information. Use IP security cameras because they operate over the TCP/IP network. Implement your physical security plan by dragging the correct items from the shelf into the various locations in the building. As you drag the items from the shelf, the possible drop locations are highlighted. Not all items on the shelf will be used. In this l LabSim Ron, a hacker, wants to get access to a prestigious law firm he has been watching for a while. June, an administrative assistant at the law firm, is having lunch at the food court around the corner from her office. Ron notices that June has a picture of a dog on her phone. He casually walks by and starts a conversation about dogs. Which phase of the social engineering process is Ron in? Development phase YuJin drove his smart car to the beach to fly his drone in search of ocean animal activity. Which of the following operation systems are most likely being used by his car and drone? Integrity RTOS and snappy Which of the following is a short-range wireless personal area network that supports low-power, long-use IoT needs? BLE(Bluetooth low energy) Mark is moving files from a device that is formatted using NTFS to a device that is formatted using FAT. Which of the following is he trying to get rid of? Malicious alternate data streams. An IDS can perform many types of intrusion detections. Three common detection methods are signature-based, anomaly-based, and protocol-based. Which of the following best describes protocol-based detection? This detection method can include malformed messages and sequencing errors. What are the two types of Intrusion Detection Systems (IDSs)? HIDS and NIDS Which of the following best describes what SOX does? Implements accounting and disclosure requirements that increase transparency. Which of the following best describes a stateful inspection? Determines the legitimacy of traffic based on the state of the connection from which the traffic originated. Which type of web application requires a separate application to be installed before you can use the app? Client-based web app Which of the following best describes what FISMA does? Defines how federal government data, operations, and assets are handled. A goal-based penetration test needs to have specific goals. Using SMART goals is extremely useful for this. What does SMART stand for? Specific/Measurable/Attainable/Relevant/Timely The Simple Network Management Protocol (SNMP) is used to manage devices such as routers, hubs, and switches. SNMP works with an SNMP agent and an SNMP management station in which layer of the OSI model? Application Layer It may be tempting for an organization to feel secure after going through the process of penetration testing and the corrections and hardening that you must perform. Which of the following should you help them to understand? Hackers have time on their side, and there will always be new threats to security. You have just discovered that a hacker is trying to penetrate your network using MAC spoofing. Which of the following best describes MAC spoofing? Changing a hacker's network card to match a legitimate address being used on a network. Which of the following is a benefit of using a proxy when you find that your scanning attempts are being blocked? It filters incoming and outgoing traffic, provides you with anonymity, and shields you from detection. An attacker may use compromised websites and emails to distribute specially designed malware to poorly secured devices. This malware provides an access point to the attacker, which he can use to control the device. Which of the following devices can the attacker use? Any device that can communicate over the intranet can be hacked. Daphne has determined that she has malware on her Linux machine. She prefers to only use open-source software. Which anti-malware software should she use? ClamAV Mary is using asymmetric cryptography to send a message to Sam so that only Sam can read it. Which of the following keys should she use to encrypt the message? Sam's public key Jerry runs a tool to scan a clean system to create a database. The tool then scans the system again and compares the second scan to the clean database. Which of the following detection methods is Jerry using? Integrity-based Which of the following techniques involves adding random bits of data to a password before it is stored as a hash? Password salting Which of the following is the third step in the ethical hacking methodology? Gain access Creating an area of the network where offending traffic is forwarded and dropped is known as _________? Black hole filtering The following formula defines which method of dealing with risk? Cost of Risk Damage = Risk _________ Acceptance Which of the following do hackers install in systems to allow them to have continued admittance, gather sensitive information, or establish access to resources and operations within the system? Backdoors Anabel purchased a smart speaker. She connected it to all the smart devices in her home. Which of the following communication models is she using? Device-to-device Whois, Nslookup, and ARIN are all examples of: Network footprinting tools You have found the IP address of a host to be 172.125.68.30. You want to see what other hosts are available on the network. Which of the following nmap commands would you enter to do a ping sweep? nmap -sn 172.125.68. 1-255 Which of the following footprinting methods would you use to scan a web server to find ports that the web server is using for various services? Service discovery Julie is looking for a honeypot detection tool that is capable of packet manipulation. Which of the following tools should she use? Snort inline Which of the following Bluetooth hacking tools is a complete framework to perform man-in-the-middle attacks on Bluetooth smart devices? Btlejuice A company has subscribed to a cloud service that offers cloud applications and storage space. Through acquisition, the number of company employees quickly doubled. The cloud service vendor was able to add cloud services for these additional employees without requiring hardware changes. Which of the following cloud concepts does this represent? Rapid elasticity Michael is performing a penetration test for a hospital. Which federal regulation does Michael need to ensure he follows? HIPAA You are looking for a web server security tool that will detect hidden malware in websites and advertisements. Which of the following security tools would you most likely use? Hackalert Which of the following best describes an anti-virus sensor system? A collection of software that detects and analyzes malware. You are on a Windows system. You receive an alert that a file named MyF had been found. Which of the following could this indicate? Host-based IDS Which of the following IDS detection types compare behavior to baseline profiles or network behavior baselines? Anomaly-based Which of the following is a deviation from standard operating security protocols? Security exception You are configuring several wireless access points for your network. Knowing that each access point will have a service set identifier (SSID), you want to ensure that it is configured correctly. Which of the following SSID statements are true? The SSID is a unique name, separate from the access point name. Which of the following best describes the scan with ACK evasion method? Helps determine whether the firewall is stateful or stateless and whether or not the ports are open. ABC company is in the process of merging with XYZ company. As part of the merger, a penetration test has been recommended. Testing the network systems, physical security, and data security have all been included in the scope of work. What else should be included in the scope of work? Company culture Using Wireshark, you have used a filter to help capture only the desired types of packets. Using the information shown in the image, which of the following best describes the effects of using the host 192.168.0.34 filter? Only packets with 192.168.0.34 in either the source or destination address are captured. Which of the following information sharing policies addresses the sharing of critical information in press releases, annual reports, product catalogs, and marketing materials? A printed materials policy Using a fictitious scenario to persuade someone to perform an action or give information they aren't authorized to share is called: Pretexting Which of the following cloud computing service models delivers software applications to a client either over the Internet or on a local area network? SaaS In a world where so much private information is stored and transferred digitally, it is essential to proactively discover weaknesses. An ethical hacker's assessment sheds light on the flaws that can open doors for malicious attackers. Which of the following types of assessments does an ethical hacker complete to expose these weaknesses? Vulnerability assessment